VDB
ALPINE-CVE-2024-36293
ALPINE-CVE-2024-36293
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.
Risk Scores
CVSS 4.0
6.800000190734863
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.21 | intel-ucode | 20210216-r0, 0, 20130222-r0 |
| Alpine:v3.22 | intel-ucode | 20180312-r0, 0, 20241112-r0 |
| Alpine:v3.19 | intel-ucode | 0, *, 0 |
| Alpine:v3.18 | intel-ucode | 20170511-r0, 20200508-r0, 20190618-r0 |
| Alpine:v3.23 | intel-ucode | 20190514a-r0, *, 20180807a-r1 |
| Alpine:v3.20 | intel-ucode | 20220419-r0, 20220809-r0, 20221108-r0 |
| Alpine:v3.24 | intel-ucode | 0 |
Timeline
- Feb 12, 2025 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 15, 2026 CVE Updated